Network Security Solution

Unanswered Question
Jun 23rd, 2010

Hi everyone!

I'm planning to design a security system for my company like this. I do not have experence so someone plese help me to correct this.

1. Externall firewall: Working as IPS (anti worms, virus, trojan, VPN, FTPS, HTTPS) with database updated

-> using cisco 5540 with AIP card

2. Internal firewall: Working as IDS (sniffing and logging)

-> using Cisco 5520 with CSC card
3. Network Access Control

-> using CSMARS (not sure)

4. Internet Proxy: /* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-parent:""; mso-padding-alt:0in 5.4pt 0in 5.4pt; mso-para-margin:0in; mso-para-margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:10.0pt; font-family:"Calibri","sans-serif"; mso-bidi-font-family:"Times New Roman";} caching proxy server, web proxy, Content Filtering Web Proxy, Anonymizing proxy server, Intercepting proxy server

-> don't no which device to use.

5. /* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-parent:""; mso-padding-alt:0in 5.4pt 0in 5.4pt; mso-para-margin:0in; mso-para-margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:10.0pt; font-family:"Calibri","sans-serif"; mso-bidi-font-family:"Times New Roman";} Email Security gateway: anti spam, spyware, phishing..

-> don't no which device to use.

Please help me in this problem. If you have a template or any document about this solution, please share with me.

Thanks a lots,

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Marcin Latosiewicz Wed, 06/23/2010 - 09:30

Points 4 and 5 can be half done by cut-through proxy half by CSC or a solution with external filtering enginers ... IronPort/websense.

3. MARS does not work as NAC - You need either clean access or older NAC ... meaning solutions with ACS.

Actions

This Discussion